Sending IIS (Windows Server) log to CloudWatch without SSM - possible?

0

Hello,

  • chatGPT states that you don't need to use any SSM features when installing and configuring CloudWatch agent on Windows machine to send IIS log.
    • But another videos on Youtube recommend using except cloudwatch role, also some ssm role for EC2 instance and SSM agent/features to reach the goal.
  • ** One video even points on necessity of having enabled 'Endpoint ssm' feature (in VPC) to make the final configuration working.

What is the correct answer?

Can I do it as a beginner without all those SSM-related stuff?

Thanks a lot

2 Answers
0

All that’s required is the cloud watch agent installing and configuring on the instance and with connectivity to the logs public or private endpoint.

And

A role with permissions to write to cloud watch log groups will be required too.

SSM isn’t required but may be used to configure and or install the agent in an automated way.

profile picture
EXPERT
answered 6 months ago
profile picture
EXPERT
reviewed 6 months ago
profile picture
EXPERT
reviewed 6 months ago
0

hey,

install the CloudWatch agent in your server and configure it to push the logs.

Make sure to create and attach an IAM instance profile i.e., an IAM role to the server which should have permissions to send logs to CloudWatch.

Following document will help you to setup the CloudWatch agent and required policies https://repost.aws/knowledge-center/cloudwatch-push-metrics-unified-agent

profile picture
answered 6 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions